This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
Cortex XSOAR Discussions
Cortex XSOAR enables SOC analysts to manage alerts across all sources, standardize processes with playbooks, take action on threat intel, and automate response for any security use case.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Cortex XSOAR Discussions
Cortex XSOAR enables SOC analysts to manage alerts across all sources, standardize processes with playbooks, take action on threat intel, and automate response for any security use case.
About Cortex XSOAR Discussions
Cortex XSOAR enables SOC analysts to manage alerts across all sources, standardize processes with playbooks, take action on threat intel, and automate response for any security use case.

Discussions

Start a conversation

XSOAR Playbook - Crowdstrike Endpoint Update

Hi All,i am new to XSOAR playbooks but i have managed to get a playbook operational that accepts data from a Microsoft form and then updates a crowdstrike endpoint's tag information (this end point is hard coded atm via its ID).The automation (cs-update-device-tags) will only accept the Crowdstrike ID. Its a unique 32 character value, which is o...

SHobbins by L1 Bithead
  • 3123 Views
  • 3 replies
  • 0 Likes

EWS V2 Integration Issue

Hi Everyoen, I have XSOAR integration with EWS V2, few days ago its working fine but now suddenly got an issue please see the screenshot and provide valueable answers. Error (March 27, 2024 3:42 PM) Script failed to run: Docker code runner got container error: [Docker code script is in inconsistent state, expected pong but didn't got any r...

Syedhkt by L2 Linker
  • 2334 Views
  • 1 replies
  • 0 Likes

Xsoar Custome Widget

Hi, I am trying to create a custom widget that calculate follwing (Total Incident+ Total Command Execution) with date paramters adjusted by widget. I tried to implement this with JSON method and Automation Script but unable to get the solution. Can you suggest some solution and how this will be acheieved using automation script. Second questi...

Syedhkt by L2 Linker
  • 1701 Views
  • 2 replies
  • 0 Likes

NFR Licence Query

Hello Live Community, I have a few questions regarding an NFR license that we currently have for an XSOAR Server. I want to create an HA configuration or use the existing license for a Dev server alongside the prod server. Does the license allow me to deploy these servers on the same license? Many thanks, Michael Rose Cortex XSOAR

Loading Loop upon login to Cortex xSOAR

Hello Team,We're experiencing an issue upon logging in to cortex where it will just loop the home page. Upon checking, the developer tools we find below error. 450 Unauthorized This server could not verify that you are authorized to access the document you requested. Either you supplied the wrong credentials or your browser does not understand h...

XSOAR Integration with Cortex XDR

Hello, we're trying to integrate Cortex XDR to our XSOAR, we already have the "Palo Alto Networks Cortex XDR - Investigation and Response" instance and we set the Starred incidents fetch window and the First fetch timestamp to 30 days (we even try to do 7 days) but the problem is that on Cortex XDR, there are some incidents from even 30 or more ...

Resolved! Engine For Hosting Web Forms For Data Collection Tasks

Hi All I am trying to create a data collection task via email wherein the end user receives an email with the link to the form. As of now, the link is hosted on my XSOAR server. I would like to host those web form on an XSOAR engine so that no one reaches out to my application server URL for submitting it. I tried to look into the documents ho...

Resolved! Extract IP's from context data

Hi Team,we want to extract and check the IP reputation of IP's from a context data value which consists of 70k IP's from EDL and i just need 1000 IP's from that context value. Could you please assist us ..? please find the attachment Cortex XSOAR

Resolved! XSOAR - Using a script to run playbook

I want to be able to click on an Indicator (i.e. a domain) in the Incidents page, run a script to kick off an approval process, once approved, continue to block. I've come to the conclusion that script execution in XSOAR is not synchronous; the script feature doesn't have the capability to wait for the user to confirm via War Room or anything ...

integration script timeout; how to increase timeout value

Support is turning me away because the question is regarding a custom integration; they suggested I post a question here.My issue is, i don't want to support troubelshoot the why the script is timing out, i just want to set the property to let it run for more than 300 seconds. Note if i re-run the script it works, it only fails sporadically.Err...

JoshBoyd by L2 Linker
  • 1980 Views
  • 1 replies
  • 0 Likes

Using RPA from Cortex XSOAR

Hello LC, I working on a unique deployment that requires the use of RPA to do a few actions that are not supported by API on the target systems. Has anyone successfully created an integration or similar for Crayon or other RPA systems? I can see that there are some existing integrations such as PAM360 but this is a system that is not in use in m...

  • 1302 Posts
  • 45 Subscriptions
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks